Fortinet Products Denial of Service Vulnerability
source link: https://www.hkcert.org/security-bulletin/fortinet-products-denial-of-service-vulnerability_20220406
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Fortinet Products Denial of Service Vulnerability
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
A vulnerability has been identified in Fortinet Products. A remote user can exploit this vulnerability to trigger denial of service condition on the targeted system.
Impact
- Denial of Service
System / Technologies affected
- FortiOS version 6.0.0 through 6.0.14
- FortiOS version 6.2.0 through 6.2.10
- FortiOS version 6.4.0 through 6.4.8
- FortiOS version 7.0.0 through 7.0.5
- FortiManager version 6.2.0 through 6.2.9
- FortiManager version 6.4.0 through 6.4.7
- FortiManager version 7.0.0 through 7.0.3
- FortiAnalyzer version 6.2.0 through 6.2.9
- FortiAnalyzer version 6.4.0 through 6.4.7
- FortiAnalyzer version 7.0.0 through 7.0.3
- FortiDeceptor version 3.0.0 through 3.0.2
- FortiDeceptor version 3.1.0 through 3.1.1
- FortiDeceptor version 3.2.0 through 3.2.2
- FortiDeceptor version 3.3.0 through 3.3.2
- FortiDeceptor version 4.0.0 through 4.0.1
- FortiDeceptor version 4.1.0
- FortiAuthenticator version 6.0.0 through 6.0.7
- FortiAuthenticator version 6.1.0 through 6.1.2
- FortiAuthenticator version 6.2.0 through 6.2.1
- FortiAuthenticator version 6.3.0 through 6.3.3
- FortiAuthenticator version 6.4.0 through 6.4.1
- FortiMail version 6.0.0 through 6.0.12
- FortiMail version 6.2.0 through 6.2.8
- FortiMail version 6.4.0 through 6.4.6
- FortiMail version 7.0.0 through 7.0.3
- FortiRecorder version 6.0.0 through 6.0.10
- FortiRecorder version 6.4.0 through 6.4.2
- FortiProxy version 7.0.0 through 7.0.3
- FortiSwitch version 6.0.0 through 6.0.7
- FortiSwitch version 6.2.0 through 6.2.7
- FortiSwitch version 6.4.0 through 6.4.10
- FortiSwitch version 7.0.0 through 7.0.4
- FortiWeb version 6.3.0 through 6.3.18
- FortiWeb version 6.4.0 through 6.4.2
- FortiWeb version 7.0.0
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://fortiguard.fortinet.com/psirt/FG-IR-22-059
Vulnerability Identifier
Source
Related Link
Recommend
-
30
parser attacks for denial of service published on 2019-05-03 Denial of service attacks are (possibly coordinated) efforts to disrupt a networked service by overloading it wi...
-
5
There is a possible Denial of Service vulnerability in the Mime type parser of Action Dispatch. This vulnerability has been assigned the CVE identifier CVE-2021-22902. Versions Affected: >= 6.0.0 Not affected: < 6.0.0 Fixe...
-
14
Elastic Stack vulnerability can lead to data theft and denial-of-service attacks
-
10
Second Log4j vulnerability carries denial-of-service threat, new patch available A second vulnerability impacting Apache Log4j has been discovered as the security industry has scrambled to mitigate and fix a severe zero-day
-
14
New Unisoc chipset vulnerability could allow remote denial of network services
-
6
New Fortinet service offers next-gen firewall protection for AWS environments
-
8
GOT DISCLOSURE? — Fortinet says hackers exploited critical vulnerability to infect VPN customers Remote code-execution bug was exploited to backdoor vulnerable servers.
-
5
A trio of dubious denial-of-service security vulnerability reports which are just style points piled on top of nothing
-
3
Denial of service vulnerability discovered in libraries used by GitHub and others
-
12
News Analysis Companies urged to patch critical vulnerability in Fortinet FortiNAC
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK